/i.s3.glbimg.com/v1/AUTH_59edd422c0c84a879bd37670ae4f538a/internal_photos/bs/2021/H/w/YbA657S3aYVfC0P9wboQ/g1-favicon.png){kind=small}
/i.s3.glbimg.com/v1/AUTH_da025474c0c44edd99332dddb09cabe8/internal_photos/bs/2023/1/X/nkkB7tSdirnIUbGhakCQ/favicon-o-globo.png){kind=small}
/i.s3.glbimg.com/v1/AUTH_63b422c2caee4269b8b34177e8876b93/internal_photos/bs/2018/e/e/PAMa3oQXOPBUOsGgFyFw/valor-tenant-icon.png){kind=icon}
Overview
- Valor reports the intrusion targeted Campinas-based software provider Diletta Solutions, affecting multiple client fintechs with roughly R$40 million in illicit transfers.
- At least R$26 million was taken from FictorPay, which says its own core systems were not impacted and that the irregular activity originated at a third-party provider.
- Diletta confirms it was victimized, says it is cooperating with police, and reports no identified involvement of personal data so far.
- The central bank detected atypical flows linked to the case and flagged Celcoin, with sources saying no Banco Central systems were breached.
- Celcoin states it blocked unusual transactions and is assisting recovery efforts, as investigators examine a playbook involving coerced or suborned credentials similar to prior attacks that prompted tighter BC limits on certain Pix and TED transfers.